$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/3D19A90810AD11ED9FFCFC56C4F9AE02.roa File: 3D19A90810AD11ED9FFCFC56C4F9AE02.roa (raw, json) Hash identifier: koUJwsthnnv3MW7dV6+ngnbDpqdUelwa7cufCTHjN3Q= Subject key identifier: 07:9F:28:C3:A1:89:B7:35:DD:27:9D:87:13:41:00:98:8A:7C:63:E0 Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Certificate serial: 0B22 Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/3D19A90810AD11ED9FFCFC56C4F9AE02.roa Signing time: Fri 06 Oct 2023 12:17:29 +0000 ROA not before: Fri 06 Oct 2023 12:17:29 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 134371 IP address blocks: 103.62.140.0/22 maxlen: 24 202.136.88.0/22 maxlen: 24 2400:3dc0::/32 maxlen: 32 2400:3dc0::/36 maxlen: 36 2400:3dc0::/44 maxlen: 48 2400:3dc0:10::/44 maxlen: 48 2400:3dc0:2e::/48 maxlen: 48 2400:3dc0:2f::/48 maxlen: 48 2400:3dc0:3e::/48 maxlen: 48 2400:3dc0:3f::/48 maxlen: 48 2400:3dc0:40::/44 maxlen: 48 2400:3dc0:50::/44 maxlen: 48 2400:3dc0:60::/44 maxlen: 48 2400:3dc0:100::/48 maxlen: 48 2400:3dc0:101::/48 maxlen: 48 2400:3dc0:200::/48 maxlen: 48 2400:3dc0:201::/48 maxlen: 48 2400:3dc0:300::/48 maxlen: 48 2400:3dc0:400::/48 maxlen: 48 2400:3dc0:500::/48 maxlen: 48 2400:3dc0:600::/48 maxlen: 48 2400:3dc0:700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2850 (0xb22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Validity Not Before: Oct 6 12:17:29 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=651ffad8-32fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0e:b3:da:b7:8d:b9:24:be:68:d7:91:9f:7f: 29:35:83:d3:e8:00:c3:db:95:d1:cc:02:1b:26:e7: 4b:78:55:b9:79:f1:4c:12:69:7b:cb:9b:78:99:93: 82:57:47:b5:78:f0:4c:09:22:71:94:34:69:9e:a4: b5:d0:a2:76:36:01:0e:98:f8:68:f1:20:43:6c:15: 83:94:56:2f:38:5f:5c:be:4b:7a:24:e6:62:9c:1e: 04:c8:c0:11:2f:c3:39:4f:98:54:23:26:ee:99:62: b4:bf:6f:8d:05:fb:e9:cf:17:84:85:46:d6:6f:b4: f8:0c:7a:25:da:da:15:16:1d:2a:7a:4d:b0:54:c1: 3b:71:ad:d5:d8:99:2d:09:aa:2c:4c:1a:dc:78:0f: 94:36:1b:98:12:33:de:85:b9:ab:de:2a:fd:9d:66: 09:15:c0:d7:30:93:63:0b:04:4e:3a:04:60:31:c7: f6:13:f1:ce:e4:aa:b7:f7:76:c9:37:7f:bb:b7:83: 05:0b:30:94:3e:bb:6c:35:29:50:58:a6:39:7e:b4: d9:00:c3:ac:42:6e:5f:a4:c2:86:1c:c8:3a:69:4c: 3e:89:60:26:20:79:c9:d1:dd:f8:48:4f:c9:30:33: 73:5d:09:ba:ce:cd:c5:a6:2d:75:41:e0:52:15:5f: 8e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:9F:28:C3:A1:89:B7:35:DD:27:9D:87:13:41:00:98:8A:7C:63:E0 X509v3 Authority Key Identifier: keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/3D19A90810AD11ED9FFCFC56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.62.140.0/22 202.136.88.0/22 IPv6: 2400:3dc0::/32 Signature Algorithm: sha256WithRSAEncryption 98:8e:ea:a5:da:12:ce:df:32:8f:b2:66:fe:a4:d9:df:4a:d3: 64:ed:1b:79:ac:fa:64:9b:a9:a0:20:a4:d9:c2:b1:ac:13:9c: 4b:76:f7:f8:e8:82:b1:5e:5d:11:b3:dd:b2:c8:41:0c:8a:ec: 14:94:f7:e9:64:67:a6:48:b4:f2:bb:fc:00:aa:ce:d9:f8:f7: cd:86:a1:b7:10:f0:51:1f:40:aa:a0:86:7e:c4:3e:fa:41:77: 13:73:a0:70:69:0a:1d:9f:0a:0d:f0:62:a6:a0:43:bc:aa:65: e3:97:24:9a:aa:8b:9b:46:89:3f:6d:8e:c2:c7:68:1c:be:3d: 2f:02:fe:8d:f0:e7:e4:3a:f8:40:87:c9:8a:a9:3a:91:85:d4: 4e:a6:cc:0c:4b:ba:26:0c:d3:73:01:a9:0d:df:9f:f4:d9:c7: 9d:9a:d3:c0:ea:42:5a:83:3b:bf:ed:7f:9e:3e:86:a2:c8:a9: d3:e2:3f:a8:73:97:4c:13:7b:a4:18:3a:6d:4f:56:2e:69:f9: c7:e7:8b:ed:e0:cb:6e:be:8b:47:dc:5f:b2:4e:20:1f:42:ed: 98:f9:7b:37:43:dd:ee:83:00:f6:a5:61:a7:f1:a2:31:bd:91: a8:dd:79:a7:7d:23:47:c8:23:b6:28:d0:65:f1:2b:8f:d8:8e: 27:f5:f6:27 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ3NUMxMTAvBgNVBAUTKDFBMUE0MEFEOTNBNEE0MzA3RUQ3MjY0RDQ3RDI1MkNB RjYyREVGRkQwHhcNMjMxMDA2MTIxNzI5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFmZmFkOC0zMmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxA6z2reNuSS+aNeRn38pNYPT6ADD25XRzAIbJudLeFW5efFMEml7y5t4mZOC V0e1ePBMCSJxlDRpnqS10KJ2NgEOmPho8SBDbBWDlFYvOF9cvkt6JOZinB4EyMAR L8M5T5hUIybumWK0v2+NBfvpzxeEhUbWb7T4DHol2toVFh0qek2wVME7ca3V2Jkt CaosTBrceA+UNhuYEjPehbmr3ir9nWYJFcDXMJNjCwROOgRgMcf2E/HO5Kq393bJ N3+7t4MFCzCUPrtsNSlQWKY5frTZAMOsQm5fpMKGHMg6aUw+iWAmIHnJ0d34SE/J MDNzXQm6zs3Fpi11QeBSFV+OHwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFAefKMOh ibc13SedhxNBAJiKfGPgMB8GA1UdIwQYMBaAFBoaQK2TpKQwftcmTUfSUsr2Le/9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDc1Qy8yQkM1RkQ0MDA2 QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BEQi0xeVpOUjlKU3l2WXQ3 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0docEFyWk9rcERCLTF5Wk5SOUpTeXZZdDdfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQ3NUMvMkJDNUZENDAwNkMwMTFFQUJDNDNCNzA5QzRGOUFFMDIvM0QxOUE5MDgx MEFEMTFFRDlGRkNGQzU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnPowDBALKiFgwDQQCAAIwBwMFACQAPcAwDQYJKoZIhvcN AQELBQADggEBAJiO6qXaEs7fMo+yZv6k2d9K02TtG3ms+mSbqaAgpNnCsawTnEt2 9/jogrFeXRGz3bLIQQyK7BSU9+lkZ6ZItPK7/ACqztn4982GobcQ8FEfQKqghn7E PvpBdxNzoHBpCh2fCg3wYqagQ7yqZeOXJJqqi5tGiT9tjsLHaBy+PS8C/o3w5+Q6 +ECHyYqpOpGF1E6mzAxLuiYM03MBqQ3fn/TZx52a08DqQlqDO7/tf54+hqLIqdPi P6hzl0wTe6QYOm1PVi5p+cfni+3gy26+i0fcX7JOIB9C7Zj5ezdD3e6DAPalYafx ojG9kajdead9I0fII7Yo0GXxK4/Yjif19ic= -----END CERTIFICATE-----Generated at Sat May 18 19:56:05 2024 by rpki-client on console-fra.rpki-client.org